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DETAILED ACTION 

1. Claims 1, 4-1 1 & 13-15 are pending. 

Allowable Subject Matter 

2. Claims 1, 4-1 1 & 13-15 are allowed. 

3. The following is a statement of reasons for the indication of allowable subject matter: 
Regarding claim 1, Kelley discloses an authenticator broker system/password program to 

intercept and redirect the identifier and secret authenticator/password (col. 6, lines 5-9) of a 
prospective user from the local computer system (col. 6, lines 5-9 & col. 7, lines 26-39), an 
authenticator broker file/password alias file (Table 1) communicating with said authenticator 
broker system/password program and having stored therein the secret authenticators/passwords 
corresponding to the personal identifiers entered by the prospective users at the local computer 
system, whereby a prospective user can gain access to a system when the authenticator entered 
by the prospective user matches the authenticator stored in said authenticator broker file/alias file 
(col. 5, line 56 - col. 6, line 4 & col. 7, lines 26-39), and a decoy authenticator file/password 
alias file (col. 5, line 56 - col. 6, line 4 & Table 1) communicating with the authenticator broker 
system to assign a decoy authenticator/real password for the secret authenticator/virtual 
password entered by the prospective user at the local computer system (col. 5, line 56 - col. 6, 
line 4 & Table 1). Raduchel teaches that centralizing authentication to local machines provides 
the benefit of easier control over the local computers' access and use (col. 2, lines 14-20, lines 
28-33, lines 46-51 & lines 62-64). Sitaraman teaches that continuously requesting access to a 
central server is a burden for authenticating users (col. 2, lines 7-13) and that one solution is to 
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include a local cache having at least one user record which is updated in response to network 
access events (col. 2, lines 38-48) that originate at the central authentication server (col. 4, lines 
25-37 & col. 7, lines 14-36). However, the prior art relied upon fails to teach or suggest a 
replacement identifier being randomly assigned by the mapping file/alias file for the identifier 
entered by the prospective user and intercepted by said authentication broker system, in 
combination with the other limitations of the claim. 

Regarding claim 9, Stallings discloses intercepting the secret authenticator/Pc entered by 
the authorized user/user on C at a local computer system/C and forwarding the secret 
identifier/Pc to an authenticator broker system/Authentication Server (p. 326, (1), (2)), 
transmitting from the authenticator broker system to the local computer system a decoy 
password/Ticket in substitution of the secret authenticator of the authorized user/Pc (p. 326, (2), 
(3)). Raduchel teaches that centralizing authentication to local machines provides the benefit of 
easier control over the local computers' access and use (col. 2, lines 14-20, lines 28-33, lines 46- 
51 & lines 62-64). However, the prior art relied upon fails to teach or suggest the user accessing 
a plurality of local computer systems, each local system being identified in an identifier mapped 
to each decoy password and authenticator, and wherein the identification of a compromised 
system is determined by the local system identifier, in combination with the other limitations of 
the claim. 

Regarding claim 13, Kelley discloses transmitting the user's local identifier and secret 
authenticator (col. 6, lines 5-9) to an authenticator broker system/password program and 
associating the secret authenticator/password (col. 6, lines 5-9) with a corresponding mapped 
identifier/virtual user ID stored on the authentication broker system (col. 6, lines 5-9 & col. 7, 
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lines 26-39 & Table 1), verifying on the authentication broker system the mapped identifier with 
the secret authenticator to authenticate the user (finding the correct virtual user ID and password 
combination) (col. 6, lines 5-9 & col. 7, lines 26-39), retrieving a decoy authenticator/virtual 
password and returning the decoy authenticator and the verification of the user to the local 
computer (col. 6, lines 5-9 & col. 7, lines 26-39) and associating the decoy authenticator with the 
local identifier at the local computer (using the virtual password). Raduchel teaches that 
centralizing authentication to local machines provides the benefit of easier control over the local 
computers' access and use (col. 2, lines 14-20, lines 28-33, lines 46-51 &. lines 62-64). 
However, the prior art relied upon fails to teach or suggest assigning a random replacement 
identifier for the local identifier entered by the user during sign on, in combination with the other 
limitations of the claim. 

Conclusion 

4. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Michael J. Simitoski whose telephone number is (571) 272-3841. 
The examiner can normally be reached on Monday - Thursday, 6:45 a.m. - 4:15 p.m.. The 
examiner can also be reached on alternate Fridays from 6:45 a.m. - 3:15 p.m. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Jacques Louis Jacques can be reached at (571) 272-6962. 

Any response to this action should be mailed to: 

Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313-1450 
Or faxed to: 

(571)273-8300 
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(for formal communications intended for entry) 

Or: 

(571) 273-3841 (Examiner's fax, for informal or draft communications, please 
label "PROPOSED" or "DRAFT") 

Any inquiry of a general nature or relating to the status of this application or proceeding should 
be directed to the receptionist whose telephone number is (571) 272-2100. 

Information regarding the status of an application may be obtained from the Patent 

Application Information Retrieval (PAIR) system. Status information for published applications 

may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 

applications is available through Private PAIR only. For more information about the PAIR 

system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 

system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 




